Do you have file permissions set so that all users can view the files you are exposing through the documents module?
That question is rather presumptuous. File permissions? Where? Is this a setting in the "Documents" module, or the File Manager? is this a setting in the Host panel or Admin panel? NTFS? Care to specify? Are you suggesting that all users should have 'View Folder' permissions on the 'File Manager', 'Security Settings' page? If so...then why doesn't version 4.3.3 upgrade just set that by default? (To preserve the previous behaviour?)
I think the more relevant question is: "Why/How does version 4.3.3 alter the file permissions from their previous settings?" For example, I was running a fresh install of 4.0.3 then applied the 4.3.3 Upgrade package. What was working is now not working and I am having a difficult time understanding:
- what has changed so that first my users were seeing a 'Permissions not sufficient' message and now (after I've applied the latest Documents Module update) only administrators can actually view the list of documents in a document module instance. (For all other users the table appears empty)
- what to change to restore the previous behaviour. (To ensure that visitors of my site are able to download the same files they were able to download prior to applying version 4.3.3).
- why does version 4.3.3 alter the permission settings? why did nobody mention it? (I'm looking in the DotNetNuke_4.3.3_Upgrade.zip package -- there's nothing in the Readme.txt which might indicate that file permissions are to be altered by this upgrade).
I've looked in the "Help" and "Online Help" for both the Documents module and the File Manager module and I see nothing that would indicate that (a) file permissions must be set one way or other to allow anonymous visitors to view the files; or (b) the Documents module has undergone a breaking change in this update.
I've looked at the new drop-down list in the File Manager:
- Insecure - File System
- Secure - File System
- Secure - Database
Is that somehow related to this whole problem? WOW! I hope not...That new drop-down list is so under-documented that I'm afraid to touch it! It's currently set at "Insecure - File System" -- so should I assume that anonymous visitors to my site should be able to access files within the folders of my site? I hope so because there are images, documents, css files, you know...stuff that I want people to see or browsers to download.
If I change it to "Secure - File System" will DotNetNuke then require an SSL connection or enforce authentication before displaying any content within those folders? Forgive me if this sounds like a ridiculous question but without any documentation about the behaviour of this feature...well...I'm left guessing.